GeneralInformation

Hostnames	static-190-24-49-196.etb.net.co pbx.hecodimec.co
Domains	etb.net.co hecodimec.co
Country	Colombia
City	Bogotá
Organization	ETB - Colombia
ISP	ETB - Colombia
ASN	AS19429
Operating System	Windows 11 (version 22H2) (build 10.0.22621)

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 3389 5060 5090

1637199859 | 2024-10-04T04:56:14.238796

80 / tcp

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.23.1
Date: Fri, 04 Oct 2024 04:56:13 GMT
Content-Type: text/html
Content-Length: 615
Last-Modified: Tue, 19 Jul 2022 14:05:27 GMT
Connection: keep-alive
ETag: "62d6ba27-267"
Accept-Ranges: bytes

CVE-2023-44487 CVE-2022-41742 CVE-2022-41741

-833172649 | 2024-10-04T12:21:55.596670

443 / tcp

3CX Phone System Management Console

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Oct 2024 12:21:54 GMT
Content-Type: text/html
Content-Length: 957
Last-Modified: Tue, 14 May 2024 17:48:33 GMT
Connection: keep-alive
ETag: "6643a3f1-3bd"
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Security-Policy: default-src 'self'; script-src 'self' blob: https://downloads-global.3cx.com https://127.0.0.1:32018 'sha256-RCMl7PJ3K2nMoGZppLZeArO5M70Pbu1k+t6RIHZO7gE=' 'sha256-v6MhWrgXnOZrJTw+mK9MqEYevK8vvSmRZFjINsy76Mw=' 'sha256-Tui7QoFlnLXkJCSl1/JvEZdIXTmBttnWNxzJpXomQjg='; worker-src 'self' blob:; connect-src 'self' https://www.gravatar.com https://127.0.0.1:32018 https://platform-lookaside.fbsbx.com ws: wss:; img-src * data: blob:; frame-src 'self' docs.3cx.cloud tcx+app:; style-src 'self' 'unsafe-inline'; frame-ancestors 'none'; media-src 'self' data:; object-src 'none'; form-action 'self'; base-uri 'self'
Strict-Transport-Security: max-age=15768000
Cache-Control: no-cache
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:26:27:cb:31:13:04:47:7d:01:12:1d:5f:04:dc:a6:f4:17
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Oct  3 09:32:26 2024 GMT
            Not After : Jan  1 09:32:25 2025 GMT
        Subject: CN=pbx.hecodimec.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (3072 bit)
                Modulus:
                    00:f8:2a:5d:9d:00:2d:f2:e2:4b:a8:11:93:43:01:
                    9b:eb:6f:52:b1:8c:73:95:e6:7c:f7:7f:cf:d4:02:
                    ec:63:80:4a:2b:eb:d5:7f:17:a8:fc:2f:06:b8:94:
                    5d:ce:e5:07:a5:45:c6:e0:c7:a0:87:c7:4a:0c:07:
                    f7:db:71:a5:85:13:25:c9:e0:d9:89:13:3a:8e:79:
                    c6:5a:64:61:2b:ac:64:7e:ca:3d:0b:a6:c0:38:4b:
                    e3:02:31:ab:bd:44:9b:ec:47:89:ca:64:f1:48:d9:
                    d1:d1:99:bb:72:70:78:ee:e5:15:98:cc:1a:a3:e2:
                    5a:b0:8c:c1:29:7d:82:8b:8b:39:45:01:9b:d7:fd:
                    0c:5c:84:d8:65:78:e3:ae:32:f6:6f:e6:f2:0a:b3:
                    d0:2c:2b:ff:22:e8:ce:09:4e:66:11:b9:c0:5a:06:
                    a5:d0:05:a1:04:d1:a6:f1:b4:50:1d:a3:c4:22:19:
                    7d:f2:d0:41:87:26:40:98:40:cd:a4:c6:bb:b6:d5:
                    a2:4f:68:12:d7:34:91:f4:01:89:1e:46:04:5a:54:
                    ea:78:56:c9:d5:3a:78:b8:20:cd:cd:3c:20:bd:c9:
                    b7:81:9d:4e:5b:ce:5a:f2:fa:32:72:e7:1a:ba:78:
                    35:19:ef:34:a7:8a:8b:af:32:79:c4:1a:a0:68:b6:
                    4b:df:20:28:47:8c:32:80:d4:a2:c6:75:7f:3e:97:
                    3e:78:dc:1b:54:64:a1:8a:22:d9:f5:af:63:44:d6:
                    1b:50:8b:90:7a:53:a0:ce:a8:aa:41:83:99:d8:7c:
                    84:26:e3:ed:38:40:8a:8f:0c:30:7c:f4:67:bf:30:
                    18:08:16:30:b1:57:a0:5d:6c:3c:ad:2b:bf:e4:26:
                    27:e7:77:b5:63:f0:c1:e3:83:3c:11:84:d2:33:e0:
                    81:af:00:1d:c2:ec:8f:c2:58:6b:36:8e:90:a9:ae:
                    61:2f:eb:6b:28:44:9a:9d:7b:b4:fb:2a:cb:8d:2f:
                    12:13:35:05:de:98:9b:88:e3:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                0B:CE:75:CE:8A:48:70:A3:12:AE:6C:51:93:62:41:2D:C0:67:02:3F
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:pbx.hecodimec.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Oct  3 10:30:57.212 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:49:8B:87:FC:EF:E0:92:F9:9B:63:70:4C:
                                B8:F5:BF:39:06:03:7D:FA:F7:41:64:09:76:7F:A6:AC:
                                98:E3:24:AA:02:21:00:AB:8E:F2:8A:D3:6F:44:71:14:
                                35:4C:19:B0:1D:B9:E2:30:41:AE:54:A1:12:99:BF:5A:
                                93:89:2F:A0:24:2C:17
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Oct  3 10:30:57.271 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4C:73:5E:71:37:60:1E:2C:8D:DA:07:11:
                                1F:C5:62:F1:68:F2:B2:80:A7:46:C0:BB:B5:75:42:2C:
                                84:EB:56:78:02:20:3A:0F:66:68:6B:26:BF:21:D9:DB:
                                7C:65:EE:2C:5C:76:84:CF:4E:A0:63:F4:3B:80:E9:43:
                                1A:78:E9:B7:9A:50
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        43:4e:0d:09:d3:98:4a:38:3b:b3:9d:81:38:9c:fe:c0:88:30:
        fb:3d:86:43:86:66:f7:d7:41:53:af:c3:3b:20:93:7c:30:dd:
        ec:d1:f3:55:90:2d:e0:ad:0b:d7:9c:75:fa:63:cf:e3:26:42:
        00:5f:60:80:cf:38:c1:ea:28:3d:af:79:64:49:a6:87:4b:ef:
        37:ad:c4:db:f5:bf:f6:95:81:c4:cb:2e:5d:33:3f:eb:af:8b:
        db:0b:eb:32:a5:25:64:46:40:de:24:ae:47:87:08:f3:7a:e0:
        27:8b:e9:58:a2:9e:7f:31:a9:7c:2d:de:05:4b:df:6f:4d:56:
        03:6e:f0:fa:04:40:12:36:6a:d6:ec:f6:c4:cf:e9:84:17:b3:
        7b:33:93:92:b2:ce:14:98:35:9d:4b:29:8c:b9:12:39:3f:08:
        3f:1e:c4:72:46:98:96:2c:e8:a0:22:47:ec:7e:f5:d4:49:05:
        e9:47:c8:3f:c5:5c:a3:0b:79:95:13:09:3a:71:19:0e:7e:62:
        4b:e5:f4:f9:b2:c7:5e:74:27:17:fc:7e:12:2e:e6:72:4a:8a:
        34:fd:49:80:31:60:d6:5d:76:40:97:c2:6f:81:bb:aa:0c:74:
        71:49:be:b7:5d:23:45:56:26:59:50:47:85:38:1f:31:a4:2d:
        14:81:ba:61

1218368935 | 2024-10-04T14:57:40.487408

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02/\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 11 (version 22H2)
  OS Build: 10.0.22621
  Target Name: HECSER01
  NetBIOS Domain Name: HECSER01
  NetBIOS Computer Name: HECSER01
  DNS Domain Name: HecSer01
  FQDN: HecSer01

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:3e:3e:4a:0a:98:db:a2:4e:bc:ca:b9:df:ce:4f:08
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=HecSer01
        Validity
            Not Before: May 30 05:49:11 2024 GMT
            Not After : Nov 29 05:49:11 2024 GMT
        Subject: CN=HecSer01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:de:f6:4d:3d:c1:a9:b4:6b:68:f7:c6:44:d5:a1:
                    b7:08:2d:9f:37:7e:a6:d1:2c:33:b3:d3:ce:67:92:
                    1d:38:26:76:f2:ec:cf:1e:c7:c1:f2:94:b6:d9:fa:
                    ac:fe:ab:93:16:2c:63:82:9e:97:b3:0b:ad:51:54:
                    10:2f:bf:ac:3c:05:3a:7e:85:27:01:67:d6:2a:f1:
                    f5:28:4a:f1:22:03:a8:86:87:44:4f:33:97:2d:61:
                    53:c0:73:71:87:76:35:dd:bd:56:8e:50:c6:69:50:
                    2c:e9:f2:79:83:45:16:8a:6d:97:3d:48:1e:cf:88:
                    dd:26:5a:82:ff:f4:c3:54:78:06:bd:e6:55:63:c4:
                    d2:64:1e:9a:9b:0a:a0:d7:9b:82:3d:1c:90:16:20:
                    df:0c:bf:83:00:b3:f2:32:f8:69:46:27:96:fe:a1:
                    45:4a:09:e8:d3:65:a0:9c:41:6c:50:1c:37:15:16:
                    94:61:44:91:5a:a4:e8:5e:a3:f7:79:f4:6b:b2:8d:
                    e5:68:95:42:13:29:0d:ba:fd:94:5a:3f:9f:cb:52:
                    bd:8d:33:5b:3b:d6:57:04:ee:70:e6:9b:21:0e:83:
                    7b:b7:97:f4:d5:6b:45:54:be:00:28:88:c1:95:34:
                    bb:20:23:e4:94:eb:39:37:c1:d5:a8:92:66:29:93:
                    da:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a9:fd:45:6b:c7:61:eb:f4:dc:75:59:14:0a:d9:d0:55:a0:82:
        df:87:a2:5c:4e:12:32:0e:2e:f8:c4:ae:ba:f4:44:9e:2b:64:
        29:ef:57:c3:1f:0b:67:2f:ef:55:61:13:28:a4:01:1f:72:85:
        a4:ca:cc:13:3e:31:74:90:9a:1c:f2:36:a0:8d:92:49:11:b8:
        7f:f6:72:37:ac:80:d4:be:68:a1:6e:46:6f:f4:e6:48:e2:d4:
        ac:e5:a4:8f:09:c4:91:39:bb:35:f6:51:f6:e2:2e:3d:da:d1:
        70:38:0d:7e:89:6d:5b:71:6b:c9:ff:f2:45:6f:eb:c6:dd:cf:
        c4:ff:e0:5b:72:d0:38:6b:db:bc:c2:37:7f:f7:8b:ea:e5:72:
        a0:15:ef:6b:93:c0:f0:19:f4:46:b5:52:00:c1:f7:9e:59:00:
        1e:81:bc:e4:ff:3b:f7:0b:0d:99:bd:6c:c3:d2:ef:83:da:8d:
        31:de:0b:2e:e7:d6:dd:3e:46:a1:62:87:c3:d7:ae:a8:c0:48:
        7d:3e:da:3b:be:4a:8e:74:4c:89:31:ed:ba:db:21:aa:6b:7a:
        44:ab:ac:11:a3:52:6b:e9:54:87:dd:66:39:e4:8b:08:06:66:
        bc:74:c8:b8:36:7d:12:60:7d:c8:07:9a:e4:60:d9:de:31:91:
        a9:57:de:a6

354160833 | 2024-09-28T09:56:33.177397

5060 / udp

SIP/2.0 200 OK
Via: SIP/2.0/UDP nm;branch=foo;rport=26810;received=224.197.24.217
To: <sip:nm2@nm2>;tag=5553e105
From: <sip:nm@nm>;tag=root
Call-ID: 50000
CSeq: 42 OPTIONS
Accept: application/sdp
Accept-Language: en
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REGISTER, SUBSCRIBE, NOTIFY, REFER, INFO, MESSAGE, UPDATE
Supported: replaces, timer
Allow-Events: message-summary, dialog, call-info, line-seize
Content-Length: 0

-1083235253 | 2024-09-16T22:44:43.961912

5090 / tcp

\x04\x00\xfb\xffLAPK

190.24.49.196

Last Seen: 2024-10-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1637199859 | 2024-10-04T04:56:14.238796
80 / tcp

nginx1.23.1

-833172649 | 2024-10-04T12:21:55.596670
443 / tcp

3CX Phone System Management Console

1218368935 | 2024-10-04T14:57:40.487408
3389 / tcp

Remote Desktop Protocol

354160833 | 2024-09-28T09:56:33.177397
5060 / udp

-1083235253 | 2024-09-16T22:44:43.961912
5090 / tcp

Products

Pricing

Contact Us

190.24.49.196

Last Seen: 2024-10-04

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

1637199859 | 2024-10-04T04:56:14.238796 80 / tcp

nginx1.23.1

-833172649 | 2024-10-04T12:21:55.596670 443 / tcp

3CX Phone System Management Console

1218368935 | 2024-10-04T14:57:40.487408 3389 / tcp

Remote Desktop Protocol

354160833 | 2024-09-28T09:56:33.177397 5060 / udp

-1083235253 | 2024-09-16T22:44:43.961912 5090 / tcp

Products

Pricing

Contact Us

Vulnerabilities

1637199859 | 2024-10-04T04:56:14.238796
80 / tcp

-833172649 | 2024-10-04T12:21:55.596670
443 / tcp

1218368935 | 2024-10-04T14:57:40.487408
3389 / tcp

354160833 | 2024-09-28T09:56:33.177397
5060 / udp

-1083235253 | 2024-09-16T22:44:43.961912
5090 / tcp